ID

VAR-202410-0311


CVE

CVE-2024-20518


TITLE

Out-of-bounds write vulnerability in multiple Cisco Systems products

Trust: 0.8

sources: JVNDB: JVNDB-2024-010004

DESCRIPTION

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device.   This vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system as the root user. RV042 Dual WAN VPN firmware, RV042G Dual Gigabit WAN VPN firmware, Cisco RV320 Dual Gigabit WAN VPN Multiple Cisco Systems products, including router firmware, contain an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Cisco Small Business Routers is a router device of Cisco

Trust: 2.16

sources: NVD: CVE-2024-20518 // JVNDB: JVNDB-2024-010004 // CNVD: CNVD-2024-45302

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2024-45302

AFFECTED PRODUCTS

vendor:ciscomodel:rv320scope:eqversion:3.0.0.19-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.1.12

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.4.2.19

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.1.10

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.5.1.11

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.0.2.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.4.2.20

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.12.19-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.2.1.13

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.0.1.17

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:3.0.0.1-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.0.2.08-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.2.02

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.1.02

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.1.1.01

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.1.1.06

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:3.0.2.01-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.4.2.20

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.12.19-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.10

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.0.0.7

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.08

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.1.12

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.2.08

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.1.0.02-tm

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.0.2.08-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.1.1.01

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.2.1.13

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.5.1.05

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.10

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.0.4.02-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.06

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.07

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.4.2.19

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.0.3.03-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.5.1.11

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.08

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.2.1.14

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.4.2.17

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.12.6-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.5.1.13

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.09

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.0.4.02-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.1.02

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.1.1.06

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.4.2.22

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.5.1.05

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.1.0.09

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.13.02-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.3.12.6-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.06

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.4.2.15

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.2.08

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.5.1.13

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:3.0.0.19-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.2.1.14

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.1.1.19

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:3.0.0.1-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.1.10

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.0.2.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.4.2.15

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:3.0.0.19-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.0.1.17

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.14

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.07

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.1.0.09

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.1.1.19

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:3.0.2.01-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.0.3.03-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.2.02

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.4.2.17

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.0.0.7

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.4.2.20

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.09

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.0.2.08-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.12.19-tm

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.14

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:3.0.2.01-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.4.2.22

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.1.0.02-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.5.1.05

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.1.1.01

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.10

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.0.0.7

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.4.2.19

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.5.1.11

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.4.2.22

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.0.2.08-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.1.12

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.1.10

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.0.2.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.1.02

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.2.1.13

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.0.1.17

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.1.1.06

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.4.2.19

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.10

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.5.1.11

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.2.02

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.0.4.02-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.5.1.13

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.1.12

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.2.08

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.4.2.20

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.12.19-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.1.02

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.13.02-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.3.12.6-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.1.1.06

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.2.1.13

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.08

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.1.0.02-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:3.0.0.1-tm

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.2.02

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.1.1.01

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.4.2.15

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.2.08

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.1.1.19

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.07

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.0.3.03-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.5.1.13

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.08

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:3.0.0.19-tm

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.4.2.17

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.1.0.02-tm

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.2.3.06

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.09

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.2.1.14

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.14

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:3.0.0.1-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.07

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.0.3.03-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.4.2.15

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.5.1.05

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:4.0.4.02-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.4.2.17

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:1.1.1.19

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.06

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:3.0.2.01-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.09

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:4.2.3.03

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.1.0.09

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.2.1.14

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.13.02-tm

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.0.0.7

Trust: 1.0

vendor:ciscomodel:rv320scope:eqversion:1.3.12.6-tm

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:1.4.2.22

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.1.10

Trust: 1.0

vendor:ciscomodel:rv325scope:eqversion:4.2.3.14

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.0.2.03

Trust: 1.0

vendor:ciscomodel:rv042scope:eqversion:4.2.3.03

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.0.1.17

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.1.0.09

Trust: 1.0

vendor:ciscomodel:rv042gscope:eqversion:1.3.13.02-tm

Trust: 1.0

vendor:シスコシステムズmodel:rv042g dual gigabit wan vpnscope: - version: -

Trust: 0.8

vendor:シスコシステムズmodel:rv042 dual wan vpnscope: - version: -

Trust: 0.8

vendor:シスコシステムズmodel:cisco rv325 dual gigabit wan vpn ルータscope: - version: -

Trust: 0.8

vendor:シスコシステムズmodel:cisco rv320 dual gigabit wan vpn ルータscope: - version: -

Trust: 0.8

vendor:ciscomodel:small business rv042scope: - version: -

Trust: 0.6

vendor:ciscomodel:small business rv042gscope: - version: -

Trust: 0.6

vendor:ciscomodel:small business rv320scope: - version: -

Trust: 0.6

vendor:ciscomodel:small business rv325scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2024-45302 // JVNDB: JVNDB-2024-010004 // NVD: CVE-2024-20518

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2024-20518
value: CRITICAL

Trust: 1.0

ykramarz@cisco.com: CVE-2024-20518
value: MEDIUM

Trust: 1.0

NVD: CVE-2024-20518
value: CRITICAL

Trust: 0.8

CNVD: CNVD-2024-45302
value: HIGH

Trust: 0.6

CNVD: CNVD-2024-45302
severity: HIGH
baseScore: 8.3
vectorString: AV:N/AC:L/AU:M/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: MULTIPLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2024-20518
baseSeverity: CRITICAL
baseScore: 9.1
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.3
impactScore: 6.0
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2024-20518
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 1.2
impactScore: 5.2
version: 3.1

Trust: 1.0

NVD: CVE-2024-20518
baseSeverity: CRITICAL
baseScore: 9.1
vectorString: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2024-45302 // JVNDB: JVNDB-2024-010004 // NVD: CVE-2024-20518 // NVD: CVE-2024-20518

PROBLEMTYPE DATA

problemtype:CWE-787

Trust: 1.0

problemtype:CWE-121

Trust: 1.0

problemtype:Stack-based buffer overflow (CWE-121) [ others ]

Trust: 0.8

problemtype: Out-of-bounds writing (CWE-787) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-010004 // NVD: CVE-2024-20518

PATCH

title:cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhVurl:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV

Trust: 0.8

title:Patch for Cisco Small Business WEB Interface Command Injection Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/618106

Trust: 0.6

sources: CNVD: CNVD-2024-45302 // JVNDB: JVNDB-2024-010004

EXTERNAL IDS

db:NVDid:CVE-2024-20518

Trust: 3.2

db:JVNDBid:JVNDB-2024-010004

Trust: 0.8

db:CNVDid:CNVD-2024-45302

Trust: 0.6

sources: CNVD: CNVD-2024-45302 // JVNDB: JVNDB-2024-010004 // NVD: CVE-2024-20518

REFERENCES

url:https://nvd.nist.gov/vuln/detail/cve-2024-20518

Trust: 1.4

url:https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-sb-rv04x_rv32x_vulns-yj2osdhv

Trust: 1.0

sources: CNVD: CNVD-2024-45302 // JVNDB: JVNDB-2024-010004 // NVD: CVE-2024-20518

SOURCES

db:CNVDid:CNVD-2024-45302
db:JVNDBid:JVNDB-2024-010004
db:NVDid:CVE-2024-20518

LAST UPDATE DATE

2024-11-20T22:54:27.568000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2024-45302date:2024-11-19T00:00:00
db:JVNDBid:JVNDB-2024-010004date:2024-10-09T01:59:00
db:NVDid:CVE-2024-20518date:2024-10-08T13:50:14.730

SOURCES RELEASE DATE

db:CNVDid:CNVD-2024-45302date:2024-11-14T00:00:00
db:JVNDBid:JVNDB-2024-010004date:2024-10-09T00:00:00
db:NVDid:CVE-2024-20518date:2024-10-02T17:15:18.637